Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 2:44 p.m.8 views

CVE-2025-26342

A CWE-306 "Missing Authentication for Critical Function" in maxprofile/accounts/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to create arbitrary users, including administrators, via crafted HTTP requests...

9.8CVSS7.3AI score0.01073EPSS
Exploits0References1
NVD
NVD
added 2025/02/12 2:15 p.m.13 views

CVE-2025-26342

A CWE-306 "Missing Authentication for Critical Function" in maxprofile/accounts/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to create arbitrary users, including administrators, via crafted HTTP requests...

9.8CVSS0.01073EPSS
Exploits0References1
Circl
Circl
added 2025/02/12 2:5 p.m.7 views

CVE-2025-26342

creationtimestamp| type| source ---|---|--- 2025-02-12 14:05:50+00:00| seen| https://infosec.exchange/users/cve/statuses/113991296597733720 2025-02-12 14:48:32+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/113991464494437804 2025-02-12 15:09:36+00:00| seen|...

9.8CVSS5AI score0.01073EPSS
Exploits0References15
CVE
CVE
added 2025/02/12 1:27 p.m.50 views

CVE-2025-26342

CVE-2025-26342 affects Q-Free MaxTime (MaxTime

9.8CVSS9.6AI score0.01073EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/12 1:27 p.m.6 views

CVE-2025-26342

A CWE-306 "Missing Authentication for Critical Function" in maxprofile/accounts/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to create arbitrary users, including administrators, via crafted HTTP requests...

9.8CVSS9.6AI score0.01073EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/12 1:27 p.m.16 views

CVE-2025-26342

A CWE-306 "Missing Authentication for Critical Function" in maxprofile/accounts/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to create arbitrary users, including administrators, via crafted HTTP requests...

9.8CVSS0.01073EPSS
Exploits0References1
Rows per page
Query Builder